Posts

Showing posts from November 24, 2018

How much extra security does key wrapping provide?

Image
up vote 3 down vote favorite 1 Wikipedia says: Key Wrap. Key Wrap constructions are a class of symmetric encryption algorithms designed to encapsulate (encrypt) cryptographic key material. The Key Wrap algorithms are intended for applications such as protecting keys while in untrusted storage or transmitting keys over untrusted communications networks. Now key wrapping needs another key for wrapping. Isn't it like a chicken-egg problem. We now need to protect another key. If someone needs to transfer key over network, wouldn't he/she use SSL/TLS rather than wrapping key? For storing keys, wouldn't someone use the password protected keystore? keys key-wrap share | improve this question ...